On Wed, 18 Jun 1997 kle(_at_)uni-paderborn(_dot_)de wrote:
At least you are trying to prevent users from loggin on the server. And
this is eluded by procmails ability to fork shells and other programs.
With a little script like the one below your users can cause serious
problems for the server:
We primarily want to prevent users from performing normal login activities
on our mail server keeping the load to a minimum. We are not aiming for
those who choose to purposely cripple our server. If we notice such users
trying to hurt our machine, we will suspend their account immediately and
then probably delete. We monitor our servers continuous and would notice
any unusual behavior.
We have already experienced problems with procmail creating infinite loops
on our servers. Even though users did not spawn a shell, they did manage
to increase the load quite a bit through incorrectly written .procmailrc.
Because processes are ran as root, they also managed to exceed their
quotas. Any suggestions on how to deal with this problem or is this a
case by case?
Thanks,
Liston
============================================================================
- Liston Bias You must get involved to have an impact.
Alumni of Oklahoma State Univ No one is impressed with the
Alumni of Florida State Univ won-loss record of the referee.
-John H. Holcomb
bias(_at_)pobox(_dot_)com
http://www.pobox.com/~bias
============================================================================